CMMC Rule is Final! The DoD released its final rule for CMMC today. We’ll be providing a detailed analysis here over the coming weeks, with a focus on how the rule affects small and midsized government contractors. You can find the full copy here: 2024-22905.pdf (federalregister.gov). Defense Scoop has some good coverage as well: DOD […]
The National Institutes of Science and Technology (NIST) has published a supplement to Special Publication (SP) 800-171 outlining requirements for a non-federal organization to develop a cyber program that is resilient against state-sponsored hackers. NIST SP 800-172, “Enhanced Security Requirements for Protecting Controlled Unclassified Information,” offers additional recommendations for defending controlled unclassified information (CUI) against advanced persistent […]